$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft File: manifest.mft (raw, json) Hash identifier: N8cn0fncQdjOzLymrY+qQkWx/3cEdKYTsIxlgul0V30= Subject key identifier: 8C:55:81:05:F9:E0:47:FA:10:F2:E0:EA:DF:90:DB:A0:F0:19:8C:DD Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3EABD9419E9D60228A0D6ED2EAEFE16619B78EBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft Manifest number: 0304 Signing time: Sun 19 May 2024 00:01:06 +0000 Manifest this update: Sun 19 May 2024 00:01:06 +0000 Manifest next update: Thu 23 May 2024 00:01:06 +0000 Files and hashes: 1: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: 1ofAOxmBh8AbaEq+PPOWZiCW6NB07SpbdKfp3Lf76vM=) 2: 11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa (hash: qpcU4OHCC7qM4ELZZVwSzirOadDDAhfBTYFAxqJraFA=) 3: 20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa (hash: zZyQjO7G5h9fAORbIhX7cGGDxSeuPsckJERTOkF6wkA=) 4: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: Qd0o8DtCr1HSFN/yK5pPYCt1JnkZUe/bvn6rz58x/Pk=) 5: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: 0hILwF62Ip9G9/Cw1FQXbUOdC3T0bGnNFbfyXWQDj14=) 6: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: WAOD8FyR6smBMl6XkDxuenoFpmG36X53RQaThQ84sk4=) 7: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: g5/7OTIyzt5SSFNnCFt2440cWII17NtniX9TFJVU6Rk=) 8: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: ShpSxQgO/UzWuyIgGdpMLCAKo/dCxVQdkCUaCJZlZcE=) 9: 589cbaa9-e0fe-4ad9-ba2a-25c4433a8da4.roa (hash: MO2EnYrYTJVeH5FziBQE1KLvPFCpUB6YV7VgKhemgtM=) 10: 65f60eb5-aea2-48c7-83e9-3e1305e6dbea.roa (hash: NOMUavLTGuQ7wmNIvO+oRz5PYgTFcaole9RfVgPnZoY=) 11: 719ca283-3642-49b6-998d-44526d9a59a7.roa (hash: q7jSGl6qDIXK1ntcMW1SE0vlbd7dUHgVlfD+m8ln9KQ=) 12: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: ssdB4sRLhy6MShnIr2lHcTBmRuFo6KcFWKOLb2iYpLE=) 13: 86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa (hash: OQtz860EQmCNwaxHiOus9o/ipzaHCUdo8a1houS5kRk=) 14: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: FJuohVzQgUNuzGhMVQ3YWVzaCcHHr+RqENEZwB0mjRw=) 15: 97e51edc-22c5-4cb0-846c-06d6751df3b4.roa (hash: sFeHNLngGAhyI/O1MKITBS1rtcFyINBFuQY5y1ZIDFQ=) 16: 98be1b25-e267-48c9-8089-71d3f3f86c51.roa (hash: cJsuYky4pAHOuKQk9RhwPKG8dUKEn6ujPFcHW0T9r5k=) 17: 9fb28a95-f5bb-4868-9ab3-7d83d5142538.roa (hash: uulOA5QUpa9iqcvRYW5Shhk1YL3qgbnshrRVes6mIFE=) 18: 9fbd7a58-e139-4ada-86fc-00bddf61bca6.roa (hash: C7igbe2EADcsuZ/DWsaN4zZcXtTavGbOmh1UrdvRkzc=) 19: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: qQ9WemdCbI/aNZ9OOkzqIJvXqmOYBLROF2K6OMCD7us=) 20: b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa (hash: oHuw86PI3qRo2Bj6PQfCfA0acXhNWpQN9EXfDmNhCx8=) 21: b57ae4d2-1a53-47c1-8b07-cfaa3aa964d9.roa (hash: AvUC+sU0peLJ9+k9Iwp3haQUBw7wFS03xi/UMHSKxXo=) 22: ba324b4e-d4cd-4df6-a846-89610642c7ba.roa (hash: JY+5Ve+DEPAXCjcBkhPNb6GyNUgsUfcFad6Bwf5s/U8=) 23: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: HRxFPeAXkRJBho/UEbe5SyyWRSVjTB5H2tVvn4Xll68=) 24: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: gGn9V1zrS7QHyVfPzltCzJ0TEBpInx1b3wbPfUyBpaI=) 25: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: UyPtJI3ocgFQp9VBQ9kQURHpJiJhUdiysp9aSqa3w3Y=) 26: c94ba698-f48b-499a-9e9f-3681b985bb5d.roa (hash: 52OC3+2RmuS2UqYdZjZEg6DVMuqLzuemqJK8P9S8C9E=) 27: decc3cec-c2ef-4622-8ec2-e53bb7a3e257.roa (hash: 18gFacsiJlU20XGE0Zptle/eXhNbunxA5I+D7b15+SU=) 28: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: xQ2VWbIzp/mzboZqwaVv0AYzI1g1fNRtLZnVkQCx5f4=) 29: f8620d2a-ea0f-46ef-a270-0f639f977882.roa (hash: 27VJoT4FLO+ZdN8Oj0ut+eRFTvChmw6wkA/6MtRKB+w=) 30: fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa (hash: nnBZ2/TLvSoj0LSaRe4zCCxJOaYTFtZCZxX9d4M7c64=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 00:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ab:d9:41:9e:9d:60:22:8a:0d:6e:d2:ea:ef:e1:66:19:b7:8e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 19 00:01:06 2024 GMT Not After : May 23 00:01:06 2024 GMT Subject: serialNumber=9a4a9603aef1c377f3002ad7bd4b96bf26580ac2155bad79f4275ccd47f05e6d, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1e:a6:92:34:7a:e5:be:9a:60:97:93:cf:aa: 5e:d7:88:9b:e1:65:fc:ad:86:e5:1b:cb:bf:45:5f: 78:9d:e9:6e:b7:f3:79:49:5d:c2:21:21:f0:e1:22: ff:7c:f4:2b:90:52:71:b6:5d:c3:fa:bd:8f:d7:5d: 94:3e:d5:57:18:d4:2b:d6:27:c5:ac:41:fa:84:ce: 1d:2d:20:8e:e8:7b:fc:9a:8a:9e:27:05:c6:eb:36: fd:97:b6:73:f8:0a:25:51:8e:90:11:37:0e:38:26: f5:e8:62:69:34:e3:a6:29:56:d6:57:5d:f9:7e:54: 3f:5a:e8:77:00:b9:60:61:24:f4:e7:48:29:a8:b2: ae:12:a9:7e:9f:82:cc:2b:1a:c8:6f:70:c0:b7:93: d7:13:d6:23:c5:df:65:1d:d2:75:24:36:34:3f:9b: 07:89:ca:90:b5:22:8e:18:af:be:a0:d9:16:57:13: 4d:5c:a9:8e:9b:fd:2d:93:d7:d0:f6:a8:72:df:e8: 8c:e3:3d:b3:aa:13:b1:59:50:dd:49:95:90:d4:f7: 0f:72:b2:3e:ee:63:d6:14:06:55:0e:2e:04:ac:f6: a2:93:26:83:67:5a:75:2b:88:71:45:63:20:18:ac: 60:b1:b4:f3:f3:92:a9:fd:c7:8a:85:ed:f3:20:05: 38:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:55:81:05:F9:E0:47:FA:10:F2:E0:EA:DF:90:DB:A0:F0:19:8C:DD X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e1:06:c2:04:17:bc:2c:f9:69:b4:57:fe:3e:1c:85:fc:58: c8:09:18:4a:5f:17:e7:06:98:65:c9:22:9e:10:d6:89:e8:d0: 57:3c:c0:78:50:1a:88:ac:fb:d0:3e:d3:ad:39:f0:79:ae:b6: 97:d2:22:e5:09:f3:ff:4c:45:48:84:ae:f6:46:40:c7:83:df: 25:25:42:73:0d:5d:07:46:4d:25:48:cf:14:6b:68:fb:a5:d0: 14:9f:c6:9c:09:32:7d:6e:cb:10:fc:d9:d9:af:1e:b9:58:a6: b6:2f:0d:6e:54:2f:e6:20:6a:67:92:9f:b7:d9:7c:03:f5:fb: 21:39:8e:63:8b:57:2a:d2:63:e1:ab:c7:5c:a7:dc:f7:f9:7d: 85:37:df:43:da:b9:ab:6c:4b:0d:13:11:00:a0:38:33:47:48: d9:55:19:7b:57:fe:5e:8a:a0:d1:63:e1:a7:bb:95:7f:f4:fc: bc:b3:89:a7:a8:dd:b6:b3:57:d2:71:4b:c6:50:27:10:e1:bc: 15:b3:22:66:db:84:34:6f:be:e9:3f:d1:e9:90:83:03:fc:1e: ba:40:36:aa:0b:45:b5:e8:24:e7:e5:a5:11:ee:3f:f5:6a:78: c0:21:50:71:f1:21:a0:3b:13:36:7d:22:28:fd:d0:ff:c3:6f: d7:37:00:6b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUPqvZQZ6dYCKKDW7S6u/hZhm3jr0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDUxOTAwMDEwNloX DTI0MDUyMzAwMDEwNlowejFJMEcGA1UEBRNAOWE0YTk2MDNhZWYxYzM3N2YzMDAy YWQ3YmQ0Yjk2YmYyNjU4MGFjMjE1NWJhZDc5ZjQyNzVjY2Q0N2YwNWU2ZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3R6mkjR65b6aYJeTz6pe14ib4WX8 rYblG8u/RV94nelut/N5SV3CISHw4SL/fPQrkFJxtl3D+r2P112UPtVXGNQr1ifF rEH6hM4dLSCO6Hv8moqeJwXG6zb9l7Zz+AolUY6QETcOOCb16GJpNOOmKVbWV135 flQ/Wuh3ALlgYST050gpqLKuEql+n4LMKxrIb3DAt5PXE9Yjxd9lHdJ1JDY0P5sH icqQtSKOGK++oNkWVxNNXKmOm/0tk9fQ9qhy3+iM4z2zqhOxWVDdSZWQ1PcPcrI+ 7mPWFAZVDi4ErPaikyaDZ1p1K4hxRWMgGKxgsbTz85Kp/ceKhe3zIAU4swIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIxVgQX54Ef6EPLg6t+Q26DwGYzdMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5 LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAF/hBsIEF7ws+Wm0V/4+HIX8WMgJGEpf F+cGmGXJIp4Q1ono0Fc8wHhQGois+9A+06058HmutpfSIuUJ8/9MRUiErvZGQMeD 3yUlQnMNXQdGTSVIzxRraPul0BSfxpwJMn1uyxD82dmvHrlYprYvDW5UL+YgameS n7fZfAP1+yE5jmOLVyrSY+Grx1yn3Pf5fYU330PauatsSw0TEQCgODNHSNlVGXtX /l6KoNFj4ae7lX/0/Lyziaeo3bazV9JxS8ZQJxDhvBWzImbbhDRvvuk/0emQgwP8 HrpANqoLRbXoJOflpRHuP/VqeMAhUHHxIaA7EzZ9Iij90P/Db9c3AGs= -----END CERTIFICATE-----Generated at Sun May 19 00:30:12 2024 by rpki-client on console-ams.rpki-client.org